Synthesis

Introduction

PhpLdapAdmin is an administration interface for LDAP. It is coded in PHP. With PhpLdapAdmin, you can administer a remote LDAP Server.

Debian Stable installation procedure

Binary installation

requires a functionnal apt configuration !

apt-get install phpldapadmin

Application configuration

Apache2 configuration

PhpLdapAdmin can use Apache2 and Php5. By default, the installation process configure the Apache2 server. It creates a symbolic link from /etc/phpldapadmin/apache.conf to /etc/apache2/conf.d/phpldapadmin .

Common Errors

Cannot create a posixAccount / posixGroup in a clear LDAP directory

There is a bug in theses templates that only calc uidNumber / gidNumber if there is a previus posixAccount / posixGroup. See #605061.

Following a way of cheat this problem:

Edit /etc/phpldapadmin/templates/creation/posixAccount.xml and comment the readonly attribute in uidNumber:

Now is possible insert manually the first uidNumber / gidNumber and next ones will be automatically calc.

Accessing OPENLdap's internal cn=config

The OpenLDAP server packaged in Squeeze stores its configuration in an internal ldap tree and no longer in /etc/ldap. Beginning with phpldapadmin 1.2.2 you can access the internal openldap configuration by following these steps:

Adding ldap account

The file /etc/ldap/slapd.d/cn=config/olcDatabase={0}config.ldif is usually generated during the installation and contains the initial settings. The configuration itself is stored in the ldap database. So modifying this ldif and restarting slapd does NOT change anything! By default, only the unix account root is able to read and write cn=config. In /etc/ldap/slapd.d/cn=config/olcDatabase={0}config.ldif you will find